Researchers stressing the code related to Qualcomm's implementation of the secure execution area on mobile devices found a new vulnerability that could allow access to critical data.
Top smartphone brands like Samsung, LG, or Motorola rely on Qualcomm's implementation of the Trusted Execution Environment (TEE) based on the TrustZone technology from ARM to store and handle sensitive information in a secure area inside the main processor.
TEE runs at the same time as the Android operating system and executes only trusted code completely shielded from user-installed apps.
Trusted apps (trustlets) running in TEE are also isolated from each other through software and cryptography; they receive from regular apps outside this space commands for various purposes (fingerprint recognition, decryption, payment).
![[correlate]](/data/avatars/m/79/79653.jpg?1556985072){kind=avatar}
